DEC-87-2005 16:55 FROM: ASM LAW OFFICES, LTD 4258368957 



TO:USPTO 



P. 6'35 



In re Ajpplication of WTLLMAN 
Serial No. 09/915,628 

AMENDMENTS TO CLAIMS 
1 Please amend the claims as follows (wherein additions are shown by underlining 
and deletions are shown by strikethrough in amended claims): 

I L (Currently amended) In a computer-system, a method comprising: 
receiving a request via a process thread having a fust memory map 
associated therewith; 

changing a privilege level to a level that allows a memory map change; 
! performing the memory map change to associate a second memory map with 

the process thread, the second memory map providing different memory access with respect 
to the| first memory map; and 

restoring the privilege level to a level that does not allow a memory map 

change. 

CD 

m 

i 2 (Original) The method of claim 1 wherein receiving a request comprises 

receiving an application programming interface call at an operating system component ^ 

1 1 

CD 



3. (Original) The method of claim 1 wherein receiving a request comprises, 



rn 

receiving at an operating system a call from a kernel mode component. £") 

o 

-< 

: 4. (Original) The method of claim 3 wherein the kernel mode component 
comprises an installable driver. 
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i 5. (Original) The method of claim 1 wherein changing a privilege level 
comprises calling a call gate. 

; 6. (Original) The method of claim 1 wherein changing a privilege level 
comprises changing to a ring 0 privilege leveL 

: 7. (Original) The method of claim 1 wherein performing the map change 
comprises writing to a register. 

8. (Original) The method of claim 1 wherein the second memory map accesses 
protected memory, and further comprising, executing trusted code while the second 
memory map is associated with the process thread. 

9. (Original) The method of claim 8 further comprising, performing a second 
map change to re-associate the first map with the process thread. 

: 10. (Original) The method of claim 8, wherein executing trusted code includes 
entering a function at a predefined entry point. 

1 1 . (Original) The method of claim 1 0 wherein entering the function comprises 
making an application programming interface call. 

12. (Original) The method of claim 10 wherein the function allocates memory. 

3 

PAGE 7/35 1 RCVD AT 1 2/27/2005 7:54:04 PM [Eastern Standard Time) * SVR:USPTO£FXRF*25 1 DHIS:2738300 ' CSID:4258368957 ' DURATION (mn)-ss):08-56 



CD 

m 



00 
I— 

m 
o 

o 



DEC-27-8005 16:55 FROM: ASM LRU] OFFICES » LTD 4258368957 TO:USPTO P.8<35 

In re Application of WILLMAN 
Serial No. 09/915,628 

i 

| 13. (Original) The method of claim 10 wherein the function deallocates 
memory. 

14. (Original) The method of claim 10 wherein the function allocates an object 

1 15. (Original) The method of claim 14 wherein the object comprises a handle. 

= 1 6. (Original) The method of claim 1 4 wherein the object comprises a 
synchronization objects. 

: 1 7. (Original) The method of claim 1 4 wherein the object comprises a process. 
: 1 8. (Original) The method of claim 14 wherein the object comprises a threads. 

W 

1 9. (Original) The method of claim 1 0 wherein the function performs a trust- fTl 

CO 

privileged operation. 

; 20. (Original) The method of claim 19 wherein the trust-privileged operation ^ 
comprises signaling a synchronization object. r~~ 

m 

o 
O 

2 1 . (Original) The method of claim 1 9 wherein the trust-privileged operation TJ 

«< 

comprises deleting a timer. 
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! 22, (Original) The method of claim 1 9 wherein the trust-privileged operation 



comprises closing a handle. 



| 23. (Original) The method of claim 1 wherein the first and second memory 

i 

maps each include a mapping that maps a virtual memory address to a physical memory 
address that is larger than the largest possible virtual memory address that an entity is 
allowed to address. 



! 24. (Original) The method of claim 23 wherein the virtual memory address that 
maps jto a physical memory address that is larger is in user mode addressable space. 

| 25. (Original) The method of claim 23 wherein the first and second memory 
mapsjeach include a mapping that maps a virtual memory address to a physical memory 
addrelss that is the same. 

m 
m 

26. (Original) The method of claim 25 wherein the physical memory address ^ 



that ils the same is in kernel mode addressable space. 



27. (Original) The method of claim 23 wherein the first and second memory QD 

m 
O 

address thai is the same, wherein the virtual memory address that maps to a physical Q 
! t ID 

memory address that is larger is in user mode addressable space, and wherein the physical *< 



mapi each include a mapping that maps a virtual memory address to a physical memory 



memory address that is the same is in kernel mode addressable space. 
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28- (Original) The method of claim 1 wherein the first and second memory 

maps each map a virtual memory address to a physical memory address that is common to 

1 

both maps. 

I 

| 29. (Original) The method of claim 1 wherein the second map maps to memory 
that is| invalid in the first map. 

j 30. (Original) The method of claim 1 wherein the second map maps to memory 

that has different access rights in the first map. 

i 

i 

; 31. (Canceled). 
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32. (Currently amended) In a computing device, a system comprising; 
a process having at least one thread; 

a first memory map associated with the at least one thread and having data therein 
that maps virtual memory addresses to physical memory; 

a second memory map having data therein that maps virtual memory addresses to 
physical memory, the second memory map providing different memory access with respect 
to the Jfirst memory map; 

| a protection mechanism, the protection mechanism configured to allow changing of 

i 

a map* and 

i trusted code, the trusted code configured to invoke the protection mechanism to 
change the at least one thread from being associated with the first map to be being 
associated with the second map. 



I 33, (Original) The system of claim 32 wherein the second memory map has 

CD 

morelaccess rights to virtual memory addresses than the first memory map. ft] 

> 

34. (Original) The system of claim 32 wherein the protection mechanism <[ 
comprises a call gate configured to change privilege levels. ^ 

, m 

I 35. (Original) The system of claim 32 wherein the trusted code includes a thunk 

! a-\ 

configured to re-vector a function call directed to one set of code to another set of code. i?^ 
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36. (Original) The system of claim 32 wherein the trusted code further includes 
a function. 

37. (Original) The system of claim 36 wherein the function allocates memory to 
the pn!>cess. 



38. (Original) The system of claim 36 wherein the function deallocates memory. 

39. (Original) The system of claim 36 wherein the function allocates an object. 

40. (Original) The system of claim 39 wherein the object comprises a handle. 



41 . (Original) The system of claim 39 wherein the object comprises a 
synchronization objects. 

! 

j 
i 

! 42. (Original) Tbe system of claim 39 wherein the object comprises a process. 



43. (Original) Tbe system of claim 39 wherein the object comprises a threads. 



44. (Original) The system of claim 36 wherein the function performs a trust- 



privileged operation. 
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45. (Original) The system of claim 44 wherein the trust-privileged operation 
comprises signaling a synchronization object. 

46. (Original) The system of claim 44 wherein the trust-privileged operation 
compijises deleting a timer. 

47. (Original) The system of claim 44 wherein the trust-privileged operation 
comprises closing a handle. 



while 



48. (Original) The system of claim 32 wherein only the trusted code is executed 
the second memory map is in use. 



49. (Original) The system of claim 32 wherein the trusted code executes in 
response to a call from the process, 

50. (Original) The system of claim 49 wherein the trusted code comprises an 
operating system component, and wherein the trusted code executes in response to an 
application programming interface call from the process to an operating system component 

I 
I 

| 51. (Original) The system of claim 32 wherein the protection mechanism 

| 

comprises a call gate. 
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52. (Original) The system of claim 32 wherein the trusted code changes the 
thread) from being associated with the first map to be being associated with the second map 
by writing to a register, 

53. (Original) The system of claim 32 wherein the trusted code changes the 
thread from being associated with the first map to be being associated with the second map 
by instructing a hardware component to select a different subset of a translation look-aside 
buffer. 

54. (Original) The system of claim 32 wherein the trusted code performs a 
second map change to re-associate the first map with the process thread, and invokes the 
protection mechanism to not allow map changing. 

55. (Original) The system of claim 54 wherein the protection mechanism 
changes a privilege level to not allow map changing. 

56. (Original) The system of claim 32 wherein the first and second memory 
maps each include a mapping that maps a virtual memory address to a physical memory 
address that is larger than the largest possible virtual memory address that an entity is 
allowed to specify. 

57. (Original) The system of claim 56 wherein the virtual memory address that 
maps to a physical memory address that is larger is in user mode addressable space. 
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58. (Original) The system of claim 56 wherein the first and second memory 
maps each include a mapping that maps a virtual memory address to a physical memory 
address that is the same. 

59. (Original) The system of claim 56 wherein the physical memory address 
that is the same is in kernel mode addressable space. 

60. (Original) The system of claim 32 wherein the first and second memory 
maps each map a virtual memory address to a physical memory address that is common to 
both maps. 

61 . (Original) The system of claim 32 wherein the second map maps to memory 
that is invalid in the first map. 

62. (Original) The system of claim 32 wherein the second map maps to memory 
that has different access rights in the first map. 

63. (Original) The system of claim 32 wherein the second map shares a 
mapping of some virtual addresses to physical addresses common to the first map, and 
includes another mapping of virtual addresses to physical addresses that are not common to 
the first map. 
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64. (Original) A computer-implemented method, comprising: 
associating first and second address maps with a process, wherein at least the second 
address map includes a mapping that maps a virtual address to a physical address that is 
larger than the largest possible virtual memory address; 

receiving a request from a thread of the process to change from the first address map 
to the second address map; 

changing the first address map to the second address map; and 
using the mapping to access data at a physical memory location having a physical 
address that is larger than the largest possible virtual memory address. 

65. (Currently amended) The computer-implemented method of claim 64 

wherein the first and second memory address maps each map a virtual memory address to a 

i 

physical memory address that is the same. 

66* (Original) The computer-implemented method of claim 65 wherein each 
virtual memory address that maps to a physical memory address that is larger is in user 
mode addressable space, and wherein the physical memory address that is the same is in 
kernel mode addressable space. 
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67. (Original) The computer-implemented method of claim 64 further 
comprising a third map having a mapping that maps a virtual address to a physical address 
that is larger than the largest physical address mapped to by the second map, and further 
comprising switching to the third map to access data at the physical address that is larger 
than the largest physical address mapped to by the second map. 

68. (Original) The computer-implemented method of claim 64 wherein 
changing the first map to the second map includes calling the operating system to switch 
the maps. 

69. (Canceled). 

70. (Previously presented) A computer-implemented method, comprising: 
associating first and second memory maps with a process, wherein the second 

memory map provides different memory access with respect to the first memory map; 
running trusted code with the first memory map; 

switching to the second memory map prior to running a first set of untrusted code 
without switching the process; and 

returning to the first memory map after completion of the untrusted code. 

71. (Original) The computer-implemented method of claim 70 wherein 
switching to the second map includes calling the operating system to switch the maps. 
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72. (Original) The computer-implemented method of claim 70 wherein the first 
and second maps map to at least one physical address that is the same. 

73. (Original) The computer-implemented method of claim 70 further 
comprising switching to a third map prior to running a second set of untnisted code without 
switching the process. 

74. (Previously presented) The computer-implemented method of claim 73 
wherein the first and third maps map to at least one physical address that is the same. 

75. (Previously presented) The computer-implemented method of claim 73 
wherein the second and third maps map to at least one physical address that is the same. 

76. (Currently amended) The computer-implemented method of claim 70 
wherein each of the first and second memory m aps map to at least one physical address that 
is the same. 



77. (Canceled). 
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